function pratiche_element_1() { if (check_perm_mod("pratiche", "r") == 1) { $thislist = load_fwobject("lists", "pratiche", 1); //print_r ($thislist); $output = draw_list($thislist, "pratiche"); return $output; } else { return ""; } }
function contact_element_1($link_type = 0) { if (check_perm_mod("contact", "r") == 1) { $thissearch = load_fwobject("search", "contact", 1); $output = draw_form($thissearch[form]); if ($_GET[form_id] == $thissearch[form][name]) { $output .= menage_search($thissearch[search]); } return $output; } else { return ""; } }
function calendar_element_2() { if ($_GET[scad_type] == 1) { $list_type = 5; } elseif ($_GET[scad_type] == 2) { $list_type = 4; } else { $list_type = 2; } if (check_perm_mod("calendar", "r") == 1) { $thislist = load_fwobject("lists", "calendar", $list_type); //print_r ($thislist); $output = draw_list($thislist, "calendar"); return $output; } else { return ""; } }
<?php ob_start(); include "../../../framework/framework.php"; include "../functions.php"; // Define page specific text for template $PAGE[PAGE_PICTITLE] = "ico_prat_med.gif"; $module = "pratiche"; if ($_SESSION[mobile] == true) { template_init(6); //mobile=6 - normale=2 } else { template_init(); //mobile=6 - normale=2 } $thisform = load_fwobject("form", "pratiche", 0); if (isset($_GET[id]) && $_POST[form_id] != $thisform["name"]) { $PAGE[PAGE_INTITLE] = PRATICHE_UPD; $PAGE[TXT_TITLE] = PRATICHE_UPD; $PAGE_ELEMENT[PAGE][1][0][param] = $_GET[id]; if (check_perm_obj($module, $_GET[id], "w")) { insert_last_viewed($_GET[id], $module); $rs = $DB->Execute("SELECT * FROM {$module} WHERE id=" . $_GET[id]); $result = $rs->FetchRow(); if ($result[pr_valore] < 0) { $result[pr_valore_ignore] = $result[pr_valore]; } $thisform[onpost] = str_replace("type::add", "type::upd", $thisform[onpost]); $thisform[Fields][send][content] = "submit||" . PRATICHE_UPD . "||"; $response[title] = PRATICHE_UPD_DONE; $response[text] = PRATICHE_UPD_DONE_TXT . "<br><br>" . make_button("pratiche_view.php", PRATICHE_BACK_LIST);
if (check_perm_obj($module, $_GET[ref_parent], "d")) { if ($DB->Execute("DELETE FROM {$module} WHERE id=" . $_GET[id])) { log_event("D", "prestazioni", $_GET[id]); $res_del[title] = FW_DEL_OK; print draw_response($res_del); } else { $res_del[title] = FW_DEL_KO; print draw_response($res_del); } } else { $res_del[title] = FW_ERROR_NO_PERM_DEL; print draw_response($res_del); } } if (check_perm_mod($module, "r") == 1) { $thissearch = load_fwobject("search", "prestazioni", 0); //Check for parent Perm //$perm_parent = perm_sql_read("%[PERM]%","pratiche"); //$perm_parent = str_replace ("permessi","p.permessi",$perm_parent); //$perm_parent = str_replace ("id","p.id",$perm_parent); //$true_sql="SELECT m.* FROM prestazioni m, pratiche p WHERE $perm_parent AND p.id=m.ref_id "; if ($_GET[form_id] == $thissearch[form][name]) { $error = check_form($thissearch[form], $_GET, $page); if ($error == 1) { if (count($_GET[ref_id][realval]) == 1 && strlen($_GET[ref_id][realval]) > 0) { $PAGE_ELEMENT[PAGE][1][0][param] = $_GET[ref_id][realval][0]; if ($_SESSION[history] == 0) { //$PAGE[PAGE_INTITLE].= " <span > ( <a href=\"".$CONF[url_base].$CONF[dir_modules]."prestazioni/pages/new_spesa_studio.php?ref_id=".$_GET[ref_id][realval][0]."\">".STUDIO_ADD_SPESA."</a> )"; } } //print draw_form($thissearch[form],$module,$error,$_GET);
<?php include "../../../framework/framework.php"; // Define page specific text for template $PAGE[TXT_TITLE] = ADMIN_MENU_0_3; $PAGE[PAGE_INTITLE] = ADMIN_MENU_0_3; $PAGE[PAGE_PICTITLE] = "ico_admin_med.gif"; $module = "admin"; template_init(); template_define_elements(); ob_start(); if (check_perm_mod($module, "r") == 1) { $thisobj = load_fwobject("show", "admin", 4); print draw_object($thisobj, intval($_GET[id]), $module); } else { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT; $iserror = 1; print draw_response($response); } $PAGE[PAGE_CONTENT] = ob_get_contents(); ob_end_clean(); final_render();
} else { template_init(); //mobile=6 - normale=2 } //template_init(); //mobile=6 - desktop =() ob_start(); $rs = $DB->Execute("SELECT * FROM {$module} WHERE id=" . $_GET[id]); if (!($result = $rs->FetchRow())) { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT; $iserror = 1; print draw_response($response); } else { if (check_perm_obj($module, $result[ref_prat], "r")) { $PAGE_ELEMENT[PAGE][1][0][param] = $result[ref_prat]; $thisobj = load_fwobject("show", "calendar", 0); //Prende i dati della pratica $rsP = $DB->Execute("SELECT * FROM pratiche WHERE id=" . $result[ref_prat]); $resultP = $rsP->FetchRow(); $id = $resultP[id]; $curia = str_replace("'", "´", $resultP[pr_comp_desc]); $luogocuria = str_replace("'", "´", $resultP[pr_luogo_uff_giud]); $giudice = str_replace("'", "´", $resultP[pr_giudice]); $avversario = str_replace("'", "´", $resultP[pr_referral]); $nRuolo = str_replace("'", "´", $resultP[pr_nRuolo]); //Prende i dati relativi al contributo unificato $cu_valore = $resultP[pr_valore]; $cu_giud = $resultP[pr_comp_cod]; $cu_tipo = $resultP[pr_tipo]; //calcola il contributo $c_un = CalcolaContributoUnificato($cu_valore, $cu_giud, $cu_tipo);
$cnt = 0; $rs3 = $DB->Execute("SELECT DISTINCT nota1,nota2 FROM prestazioni m, pratiche p WHERE m.ref_id=p.id AND p.pr_ref_idcliente=" . $_GET[id] . " AND nota1 <> '' AND nota2 <> ''"); while (!$rs3->EOF) { if ($cnt > 0) { $billem .= ", "; } $nota_emessa = $rs3->FetchRow(); $billem .= $nota_emessa[nota1] . '/' . $nota_emessa[nota2]; $cnt++; } //Search for fatture done $cnt = 0; $rs2 = $DB->Execute("SELECT * FROM contact WHERE id=" . $_GET[id]); $cont = $rs2->FetchRow(); $tot[billem] = $billem; $tot[fattem] = $fattem; $tot[codice] = $cont[codice]; $tot[nome] = $cont[nome]; $tot[pr_oggetto] = $prat[pr_oggetto]; $tot[pr_valore] = $prat[pr_valore]; $tot[pr_fido] = $prat[pr_fido]; $tot[subt1] = $tot[onor] + $tot["dir"]; $tot[subt2] = $tot[simp] + $tot[snimp]; $tot[subt3] = $tot[subt1] + $tot[subt2]; $tot[subm] = $tot[acco] + $tot[anti]; $tot[subf] = $tot[subt3] - $tot[subm]; $thisobj = load_fwobject("show", "contact", 1); print draw_object($thisobj, "", $module, $tot); $PAGE[PAGE_CONTENT] = ob_get_contents(); ob_end_clean(); final_render();
<?php include "../../../framework/framework.php"; // Define page specific text for template $PAGE[PAGE_PICTITLE] = "ico_admin_med.gif"; $module = "admin"; template_init(); template_define_elements(); ob_start(); $thisform = load_fwobject("form", $module, 13); if (isset($_GET[id]) && $_POST[form_id] != $thisform["name"]) { $PAGE[PAGE_INTITLE] = ADMIN_TER_PROC_UPD; $PAGE[TXT_TITLE] = ADMIN_TER_PROC_UPD; $rs = $DB->Execute("SELECT * FROM INT_termini_processuali WHERE id=" . $_GET[id]); $result = $rs->FetchRow(); $thisform[onpost] = str_replace("type::add", "type::upd", $thisform[onpost]); $thisform[Fields][send][content] = "submit||" . ADMIN_TER_PROC_UPD . "||"; $response[title] = ADMIN_TER_PROC_UPD_DONE; $response[text] = ADMIN_TER_PROC_UPD_DONE_TXT . "<br><br>" . make_button("ter_proc_view.php", ADMIN_TER_PROC_BACK_LIST); } elseif (isset($_GET[id])) { $result = $_POST; $PAGE[PAGE_INTITLE] = ADMIN_TER_PROC_UPD; $PAGE[TXT_TITLE] = ADMIN_TER_PROC_UPD; $response[title] = ADMIN_TER_PROC_UPD_DONE; $response[text] = ADMIN_TER_PROC_UPD_DONE_TXT . "<br><br>" . make_button("ter_proc_view.php", ADMIN_TER_PROC_BACK_LIST); $thisform[onpost] = str_replace("type::add", "type::upd", $thisform[onpost]); $thisform[Fields][send][content] = "submit||" . ADMIN_TER_PROC_UPD . "||"; } else { $PAGE[PAGE_INTITLE] = ADMIN_TER_PROC_ADD; $PAGE[TXT_TITLE] = ADMIN_TER_PROC_ADD; $response[title] = ADMIN_TER_PROC_ADD_DONE;
ob_start(); include "../../../framework/framework.php"; include "../functions.php"; // Define page specific text for template $PAGE[PAGE_PICTITLE] = "ico_doc_01_med.gif"; $module = "document"; if ($_SESSION[mobile] == true) { template_init(6); //mobile=6 - normale=2 } else { template_init(); //mobile=6 - normale=2 } //template_init(); //mobile=6 - desktop =() $thisform = load_fwobject("form", "document", 0); if (isset($_GET[id])) { $PAGE[PAGE_INTITLE] = DOCUMENT_UPD; $PAGE[TXT_TITLE] = DOCUMENT_UPD; $rsf = $DB->Execute("SELECT * FROM {$module} where id=" . $_GET[id]); $curfile = $rsf->FetchRow(); $PAGE_ELEMENT[PAGE][1][0][param] = $curfile[ref_prat]; /* if (!check_perm_obj("pratiche",$_GET[pid],"w")) { $response[title]=FW_ERROR_NO_PERM; $response[text]=FW_ERROR_NO_PERM_TXT; $iserror=1; print draw_response($response); } */ }
$module = "contact"; if ($_SESSION[mobile] == true) { template_init(6); //mobile=6 - normale=2 } else { if (isset($_GET['openpop']) && ($_GET['openpop'] = 1)) { template_init(4); } else { template_init(); } //mobile=6 - normale=2 } //template_init(); //mobile=6 - desktop =() template_define_elements(); //Load the form $thisform = load_fwobject("form", "contact", 0); if (isset($_GET[id]) && $_POST[form_id] != $thisform["name"]) { $PAGE[PAGE_INTITLE] = CONTACT_UPD_CONTACT; $PAGE[TXT_TITLE] = CONTACT_UPD_CONTACT; if (check_perm_obj($module, $_GET[id], "w")) { $rs = $DB->Execute("SELECT * FROM {$module} WHERE id=" . $_GET[id]); $result = $rs->FetchRow(); $thisform[onpost] = str_replace("type::add", "type::upd", $thisform[onpost]); $thisform[Fields][send][content] = "submit||" . CONTACT_UPD_CONTACT . "||"; $response[title] = CONTACT_UPD_DONE; $response[text] = CONTACT_UPD_DONE . "<br><br>" . make_button("contacts_view.php", CONTACT_BACK_LIST); } else { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT; $iserror = 1; print draw_response($response);
<?php include "../../../framework/framework.php"; // Define page specific text for template $PAGE[TXT_TITLE] = PRATICHE_MENU_0; $PAGE[PAGE_INTITLE] = PRATICHE_MENU_0; $PAGE[PAGE_PICTITLE] = "ico_clienti_med.gif"; $module = "pratiche"; if ($_SESSION[mobile] == true) { template_init(6); //mobile=6 - normale=2 } else { template_init(); //mobile=6 - normale=2 } //template_init(); //mobile=6 - desktop =() template_define_elements(); ob_start(); $thisobj = load_fwobject("show", "pratiche", 0); print draw_object($thisobj, intval($_GET[id]), $module); $PAGE[PAGE_CONTENT] = ob_get_contents(); ob_end_clean(); final_render();
$thisobj["Fields"]["button_scad"] = make_button($CONF[url_base] . $CONF[dir_modules] . "calendar/pages/app_view.php?form_id=listcont&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $result[ref_prat], PRATICHE_IMPEGN); $thisobj["Fields"]["button_doc"] = make_button($CONF[url_base] . $CONF[dir_modules] . "document/pages/documents_view.php?form_id=listdoc&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $result[ref_prat], DOCUMENT_TITLE); $thisobj["Fields"]["button_dbox"] = make_button($CONF[url_base] . $CONF[dir_modules] . "document/pages/dropbox_view.php?form_id=listdoc&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $result[ref_prat], DOCUMENT_TITLE_DROPBOX); $keymap[54] = $CONF[url_base] . $CONF[dir_modules] . "/pratiche/pages/pratiche_show.php?id=" . $result[ref_prat]; $keymap[55] = $CONF[url_base] . $CONF[dir_modules] . "/prestazioni/pages/prestazioni_view.php?form_id=listprestaz&form_page=1&ref_id[text]=&ref_id[realval][]=" . $result[ref_prat]; $keymap[56] = $CONF[url_base] . $CONF[dir_modules] . "/calendar/pages/app_view.php?form_id=listcont&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $result[ref_prat]; $keymap[57] = $CONF[url_base] . $CONF[dir_modules] . "document/pages/documents_view.php?form_id=listdoc&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $result[ref_prat]; print set_js_keyhandler($keymap); } else { $thisobj["Fields"]["button_prat"] = ""; $thisobj["Fields"]["button_pres"] = ""; $thisobj["Fields"]["button_scad"] = ""; $thisobj["Fields"]["button_doc"] = ""; } // HISTORY $thislist = load_fwobject("lists", "document", 1); $thislist[sql_select] .= $_GET[id]; $rs_tmp = $DB->Execute($thislist[sql_select]); if ($result[ref_id] == 0) { $rs_lock = $DB->Execute("SELECT * from {$module} WHERE (id=" . $result[id] . " or ref_id=" . $result[id] . ") AND `lock`>0"); } else { $rs_lock = $DB->Execute("SELECT * from {$module} WHERE (id=" . $result[ref_id] . " or ref_id=" . $result[ref_id] . ") AND `lock`>0"); } $thisobj["Fields"]["button_v"] = '<input type="button" value="' . DOCUMENT_OPEN_WEB . '" class="bot-submit" onClick="newwin = window.open(\'' . $CONF[url_base] . $CONF[dir_upload] . 'document/' . $result[filename] . '-' . $result[id] . '-' . $result[version] . '.' . $result[ext] . '\',\'newwin\',\'left=0,top=0,screenX=0,screenY=0,width=800,height=600,resizable=yes,scrollbars=yes\'); newwin.resizeTo(screen.width,screen.height);">'; $thisobj["Fields"]["button_w"] = FW_MODIFY; $thisobj["Fields"]["button_d"] = FW_DELETE; if ($rs_lock->RecordCount() == 0) { $thisobj["Fields"]["button_v"] = '<input type="button" value="' . DOCUMENT_OPEN_WEB . '" class="bot-submit" onClick="newwin = window.open(\'' . $CONF[url_base] . $CONF[dir_upload] . 'document/' . $result[filename] . '-' . $result[id] . '-' . $result[version] . '.' . $result[ext] . '\',\'newwin\',\'left=0,top=0,screenX=0,screenY=0,width=800,height=600,resizable=yes,scrollbars=yes\'); newwin.resizeTo(screen.width,screen.height);">'; if ($_SESSION[history] == 0) { $thisobj["Fields"]["button_w"] = make_button("mod_document.php?id=" . $_GET[id], FW_MODIFY); } else {
$curmonth = date("m"); } if (isset($_GET[year]) && is_numeric($_GET[year])) { $curyear = $_GET[year]; } else { $curyear = date("Y"); } if ($_SESSION[mobile] == true) { template_init(6); //mobile=6 - normale=2 } else { template_init(); //mobile=6 - normale=2 } //template_init(); //mobile=6 - desktop =() $thisform = load_fwobject("form", "calendar", 0); //Continua INS if (!isset($_GET[id])) { //unset ($thisform[Fields][continuaIns]); } ?> <?php if (isset($_GET[id])) { $rs = $DB->Execute("SELECT * FROM {$module} WHERE id=" . $_GET[id]); $resultz = $rs->FetchRow(); $PAGE_ELEMENT[PAGE][1][0][param] = $resultz[ref_prat]; } if (isset($_GET[id]) && $_POST[form_id] != $thisform["name"]) { $PAGE[PAGE_INTITLE] = CALENDAR_UPD_APP;
<?php include "../../../framework/framework.php"; // Define page specific text for template $PAGE[TXT_TITLE] = ADMIN_MENU_0_5; $PAGE[PAGE_INTITLE] = ADMIN_MENU_0_5 . " (tariffario forense)"; $PAGE[PAGE_PICTITLE] = "ico_admin_med.gif"; $module = "admin"; template_init(); template_define_elements(); ob_start(); if (check_perm_mod($module, "r") == 1) { $thislist = load_fwobject("lists", "admin", 16); print draw_list($thislist, $module); } else { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT; $iserror = 1; print draw_response($response); } $PAGE[PAGE_CONTENT] = ob_get_contents(); ob_end_clean(); final_render();
<?php include "../../../framework/framework.php"; // Define page specific text for template $PAGE[TXT_TITLE] = CALENDAR_MENU_0; $PAGE[PAGE_INTITLE] = CALENDAR_MENU_0; $PAGE[PAGE_PICTITLE] = "ico_calendar_med.gif"; $module = "admin"; template_init(4); template_define_elements(); ob_start(); //Include Form $thissearch = load_fwobject("search", $module, 2); if ($_GET[form_id] == $thissearch[form][name]) { print draw_form($thissearch[form], $module, $error, $_GET); } else { print draw_form($thissearch[form]); } print menage_search($thissearch[search]); $PAGE[PAGE_CONTENT] = ob_get_contents(); ob_end_clean(); final_render();
$thisobj["Fields"]["button_newpres"] = make_button($CONF[url_base] . $CONF[dir_modules] . "prestazioni/pages/new_prestazione.php?ref_id=" . $_GET[id], PRATICHE_ADD_PREST); $thisobj["Fields"]["button_newdoc"] = make_button($CONF[url_base] . $CONF[dir_modules] . "document/pages/new_document.php?pid=" . $_GET[id], PRATICHE_ADD_DOC); } else { $thisobj["Fields"]["button_w"] = FW_MODIFY; $thisobj["Fields"]["button_newscad"] = PRATICHE_ADD_EVENT; $thisobj["Fields"]["button_newpres"] = PRATICHE_ADD_PREST; $thisobj["Fields"]["button_newdoc"] = PRATICHE_ADD_DOC; } $thisobj["Fields"]["button_pres"] = make_button($CONF[url_base] . $CONF[dir_modules] . "prestazioni/pages/prestazioni_view.php?form_id=listprestaz&form_page=1&ref_id[text]=&ref_id[realval][]=" . $_GET[id], PRESTAZIONI_TITLE); $thisobj["Fields"]["button_scad"] = make_button($CONF[url_base] . $CONF[dir_modules] . "calendar/pages/app_view.php?form_id=listcont&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $_GET[id], PRATICHE_IMPEGN); $thisobj["Fields"]["button_doc"] = make_button($CONF[url_base] . $CONF[dir_modules] . "document/pages/documents_view.php?form_id=listdoc&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $_GET[id], DOCUMENT_TITLE); $thisobj["Fields"]["button_dbox"] = make_button($CONF[url_base] . $CONF[dir_modules] . "document/pages/dropbox_view.php?form_id=listdoc&form_page=1&ref_prat[text]=&ref_prat[realval][]=" . $_GET[id], DOCUMENT_TITLE_DROPBOX); $thisobj["Fields"]["button_sitcont"] = make_button_clean(PRATICHE_SITCONT, 'onClick="loadLayerWindow(\'' . $CONF[url_base] . $CONF[dir_modules] . 'pratiche/pages/pratiche_sitcont.php?id=' . $_GET[id] . '\');"'); $thisobj["Fields"]["button_contr_unif"] = make_button_clean(PRATICHE_CONTR_UNIF, 'onClick="javascript:MsgBox(\'' . $tx_contrib_un . '\')"'); $thislist = load_fwobject("lists", "calendar", 3); $thislist1 = load_fwobject("lists", "pratiche", 3); $thisobj["Fields"]["scad_list"] = draw_list($thislist, "calendar"); ///ECCO $thisobj["Fields"]["riun_list"] = draw_list($thislist1, "pratiche"); $thisobj["Fields"]["contr_unif"] = "Contributo unificato" . "::func=>pr_contr_unif"; print draw_object($thisobj, intval($_GET[id]), $module); } elseif ($_GET[action] == "hist") { $response[title] = PRATICHE_MOVETIT; $rsdupe = $DB->Execute("SELECT * FROM calendar WHERE ref_prat=" . $_GET[id]); if ($rsdupe->RecordCount() > 10) { $response[text] = PRATICHE_MOVE_ERRCAL . "<br><br>" . make_button("pratiche_show.php?id=" . $_GET[id], PRATICHE_BACK_SHOW); } else { $response[text] = PRATICHE_MOVE_TXT . "<br><br>" . make_button("pratiche_show.php?action=histok&id=" . $_GET[id], PRATICHE_MOVETIT) . "  " . make_button("pratiche_show.php?id=" . $_GET[id], PRATICHE_BACK_SHOW); } print draw_response($response); } elseif ($_GET[action] == "histok") {
} } } $res_del[title] = FW_DEL_OK; print draw_response($res_del); } else { $res_del[title] = FW_DEL_KO; print draw_response($res_del); } } else { $res_del[title] = FW_ERROR_NO_PERM_DEL; print draw_response($res_del); } } if (check_perm_mod($module, "r") == 1) { $thissearch = load_fwobject("search", "document", 0); //Check for parent Perm $perm_parent = perm_sql_read("%[PERM]%", "pratiche"); $perm_parent = str_replace("permessi", "p.permessi", $perm_parent); $perm_parent = str_replace("id", "p.id", $perm_parent); $true_sql = "SELECT m.* FROM document m, pratiche p WHERE {$perm_parent} AND p.id=m.ref_id "; //Dati della pratica $qP = "SELECT * FROM pratiche WHERE Id = " . $_GET[ref_prat][realval][0]; $rsP = $DB->Execute($qP); $ThisPrat = $rsP->FetchRow(); $p = $ThisPrat[pr_ref_idcliente]; $titPrat = $ThisPrat[pr_codice]; //Dati del contatto $qC = "SELECT * FROM contact WHERE Id = " . $p; $rsC = $DB->Execute($qC); $ThisCont = $rsC->FetchRow();
$PAGE[TXT_TITLE] = FW_SEARCH; $PAGE[PAGE_INTITLE] = FW_SEARCH; $PAGE[PAGE_PICTITLE] = "ico_cercare_med.gif"; $module = "pratiche"; if ($_SESSION[mobile] == true) { template_init(6); //mobile=6 - normale=2 } else { template_init(); //mobile=6 - normale=2 } //template_init(); template_define_elements(); ob_start(); if (check_perm_mod($module, "r") == 1) { $thissearch = load_fwobject("search", "pratiche", 2); if ($_GET[form_id] == $thissearch[form][name]) { $error = check_form($thissearch[form], $_GET, $page); if ($error == 1) { print draw_form($thissearch[form], $module, $error, $_GET); print menage_search($thissearch[search]); } else { print draw_form($thissearch[form], $module, $error, $_GET); } } else { print draw_form($thissearch[form]); //print menage_search($thissearch[search]); } } else { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT;
function menage_search1($search, $target_res = 2, $format_res = 0) { global $DB, $CONF, $SEARCH_TEMPLATE; //Init della ricerca foreach ($search[fields] as $key => $field) { list($type, $options) = explode("||", $field[content]); unset($target); foreach (explode("||", $field[search_field]) as $trg) { $target[] = explode("-", $trg); } unset($cnt); $cntt = array(); foreach ($target as $st) { if (!isset($SQL_SEARCH[$st[0]])) { if (!isset($search[tablesql][$st[0]])) { $SQL_SEARCH[$st[0]] = "SELECT * FROM " . $st[0] . " WHERE %[PERM]% "; } else { $SQL_SEARCH[$st[0]] = $search[tablesql][$st[0]]; } } if ($cntt[$st[0]] == 0) { $SQL_SEARCH[$st[0]] .= " AND ( "; } else { $SQL_SEARCH[$st[0]] .= " OR ("; } $cntt[$st[0]]++; // Create SQL Query according to search type if (is_array($_GET[$key]) && isset($_GET[$key][realval]) && count($_GET[$key][realval]) > 1) { $tcnt = count($_GET[$key][realval]); $linarray = 1; } elseif (is_array($_GET[$key]) && count($_GET[$key]) > 1 && !isset($_GET[$key][realval])) { $tcnt = count($_GET[$key]); $linarray = 1; } else { $tcnt = 1; $linarray = 0; } $opened = 0; for ($cnt = 0; $cnt < $tcnt; $cnt++) { unset($this_round); if (is_array($_GET[$key]) && is_array($_GET[$key][realval])) { $curval = $_GET[$key][realval][$cnt]; } elseif (is_array($_GET[$key])) { $curval = $_GET[$key][$cnt]; } else { $curval = $_GET[$key]; } if (strlen($curval) > 0) { if ($cnt > 0) { $SQL_SEARCH[$st[0]] .= " OR "; } if ($opened != 1 && $linarray == 1) { $SQL_SEARCH[$st[0]] .= " ( "; $opened = 1; } switch ($type) { case "text": $SQL_SEARCH[$st[0]] .= $st[1] . "='" . $curval . "' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "text_like": $SQL_SEARCH[$st[0]] .= $st[1] . " LIKE '%" . $curval . "%' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "text_start": $SQL_SEARCH[$st[0]] .= $st[1] . " LIKE '" . $curval . "%' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "text_end": $SQL_SEARCH[$st[0]] .= $st[1] . " LIKE '%" . $curval . "' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "text_word": $SQL_SEARCH[$st[0]] .= $st[1] . " LIKE '% " . $curval . " %' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "text_ext": $SQL_SEARCH[$st[0]] .= ext_search($st[1], $curval); if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "user_perm": $SQL_SEARCH[$st[0]] .= $st[1] . " LIKE '%U" . $curval . "=33333%'"; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = " "; } break; case "calendar_owner": $SQL_SEARCH[$st[0]] .= $st[1] . " LIKE '" . $curval . ",,%' OR " . $st[1] . " LIKE '%,," . $curval . "' OR " . $st[1] . " LIKE '%,," . $curval . ",,%' OR " . $st[1] . " LIKE '" . $curval . "'"; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = " "; } break; case "num_less": $SQL_SEARCH[$st[0]] .= $st[1] . " <= '" . $curval . "' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "num_more": $SQL_SEARCH[$st[0]] .= $st[1] . " >= '" . $curval . "' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; case "num_equal": $SQL_SEARCH[$st[0]] .= $st[1] . " = '" . $curval . "' "; if (strlen($curval) > 0) { $SEARCH_FIELDS[$st[0]][$st[1]][] = $curval; } break; } $done_seart[$st[0]]++; } } if ($linarray == 1 && $opened == 1) { $SQL_SEARCH[$st[0]] .= " ) "; } $SQL_SEARCH[$st[0]] .= ')'; $SQL_SEARCH[$st[0]] = str_replace("AND ( )", "", $SQL_SEARCH[$st[0]]); } /* //Close sql ) foreach($SQL_SEARCH as $table => $sql) { $SQL_SEARCH[$table].=')'; $SQL_SEARCH[$table]=str_replace("AND ( )","",$SQL_SEARCH[$table]); } */ } foreach ($search[tables] as $table => $options) { list($TABLES[$table][list_var], $TABLES[$table][title], $TABLES[$table][options], $TABLES[$table][permission]) = explode("||", $options); //orig //list($TABLES[$table][list_var],$TABLES[$table][title],,$TABLES[$table][permission])=explode("||",$options);//0k variante 1 //list($TABLES[$table][list_var],,$TABLES[$table][options],$TABLES[$table][permission])=explode("||",$options);//ok variante 2 //list($TABLES[$table][list_var],,$TABLES[$table][options],$TABLES[$table][permission])=explode("||",$options); } //CHECK FOR EMPTY SEARCH if ($search[allow_empty] != 1) { foreach ($SQL_SEARCH as $table => $sql) { if ($done_seart[$table] == 0) { unset($SQL_SEARCH[$table]); } } } //Check for result number foreach ($SQL_SEARCH as $table => $sql) { list($perm_type, $perm_parent) = explode(";;", $TABLES[$table][permission]); if ($perm_type == 0) { $sql = str_replace("%[PERM]%", "1=1", $sql); } //print perm_sql_read($sql,$table).'<br><br>'; $rs = @$DB->Execute(perm_sql_read($sql, $table)); $res = $rs->RecordCount(); $totr += $res; $RESULTNUM[$table] = $res; } $RESULTNUM[total] = $totr; if (isset($search[title])) { $output = str_replace("%[TITLE]%", $search[title], $SEARCH_TEMPLATE[search_title]); } if (isset($search[result_txt])) { $output .= str_replace("%[DESC]%", str_replace("%[FOUND]%", $RESULTNUM[total], $search[result_txt]), $SEARCH_TEMPLATE[search_desc]); } //Render tables results $output .= '<table width="100%" border=0 cellpadding=5>'; foreach ($SQL_SEARCH as $table => $sql) { foreach (explode(";;", $TABLES[$table][options]) as $vopt) { list($opt, $optval) = explode("::", $vopt); switch ($opt) { case "exp": if ($optval == 1) { $start_vis = 1; } break; case "lock": if ($optval == 1) { $noexp = 1; $start_vis = 1; } break; } } if (isset($_GET[$table . "_ordfield"]) || isset($_GET[$table . "_ordtype"]) || isset($_GET[$table . "_st"]) || isset($_GET[$table . "_exp"]) || isset($_GET[$table . "_imp"])) { $start_vis = 1; } if ($start_vis == 1) { $startpic = $SEARCH_TEMPLATE[group_icon_close]; $cur_vis = ""; } else { $startpic = $SEARCH_TEMPLATE[group_icon_open]; $cur_vis = "style=\"display:none\""; } if ($noexp != 1) { $more_tit = '<a href="javascript:rigaDOWN(Array(\'' . $table . '\'),\'ico_' . $table . '\',\'' . $table . '\',\'' . $SEARCH_TEMPLATE[group_icon_close] . '\',\'' . $SEARCH_TEMPLATE[group_icon_open] . '\')"><img src="' . $startpic . '" name="ico_' . $table . '" width="16" height="16" border="0" id="ico_' . $table . '"></a>'; } else { $more_tit = ""; } if ($TABLES[$table][title] != "") { $output .= '<tr><td><h5>' . $TABLES[$table][title] . ' ' . $more_tit . '</h5></td></tr>'; } require_once $CONF[path_base] . $CONF[dir_modules] . $table . "/lists.php"; $curlist = $LISTS[$table][$TABLES[$table][list_var]]; if (isset($SEARCH_FIELDS[$table])) { foreach ($SEARCH_FIELDS[$table] as $fs => $sterm) { if (isset($curlist[search_options])) { $curlist[search_options] .= "||"; } $curlist[search_options] .= "{$fs}::" . implode(";;", $sterm); } } $curlist[sql_select] = $sql; if (isset($curlist[search_options])) { list($perm_type, $perm_parent) = explode(";;", $TABLES[$table][permission]); if ($perm_type == 0) { $sql = str_replace("%[PERM]%", "1=1", $sql); } $curlist[sql_select] = $sql; $curlist[options] .= "||search::1"; } //print $sql; //PRINT if ($target_res == 0) { $curlist[box_title] = ""; unset($curlist[search_options]); $output .= '<tr id="' . $table . '" ' . $cur_vis . '><td>' . draw_list($curlist, $table) . '</td></tr>'; } elseif ($target_res == 1) { return draw_list_file($curlist, $table); } elseif ($target_res == 2) { if ($format_res == 1) { $output .= '<tr id="' . $table . '" ' . $cur_vis . '><td>'; $rs = @$DB->Execute(perm_sql_read($sql, $table)); while (!$rs->EOF) { $res = $rs->FetchRow(); $thisobj = load_fwobject("show", $table, 0); $output .= draw_object($thisobj, $res[id], $table) . "<br>\n"; } $output .= '</tr></td>'; } else { $curlist[box_title] = ""; $output .= '<tr id="' . $table . '" ' . $cur_vis . '><td>' . draw_list($curlist, $table) . '</td></tr>'; } } } $output .= '</table>'; return $output; }
include "../../../framework/framework.php"; // Define page specific text for template $PAGE[PAGE_PICTITLE] = "ico_clienti_med.gif"; $module = "prestazioni"; if ($CONF[knomos_mobile] == true) { template_init(6); //mobile=6 - normale=2 } else { template_init(); //mobile=6 - normale=2 } //template_init(); //mobile=6 - desktop =() template_define_elements(); ob_start(); $thisform = load_fwobject("form", "prestazioni", 0); if (isset($_GET[id]) && $_POST[form_id] != $thisform["name"]) { $PAGE[PAGE_INTITLE] = PRESTAZIONI_UPD; $PAGE[TXT_TITLE] = PRESTAZIONI_UPD; $rs = $DB->Execute("SELECT * FROM {$module} WHERE id=" . $_GET[id]); $result = $rs->FetchRow(); $rs2 = $DB->Execute("SELECT * FROM pratiche WHERE id=" . $result[ref_id]); $result_prat = $rs2->FetchRow(); $thisform[Fields][title_pratica][title] = PRESTAZIONI_REF_PRATICA; $thisform[Fields][title_pratica][content] = "text||" . $result_prat[pr_codice] . "||wid::40;;disab::1"; $thisform[Fields][ref_id][content] = "hidden||" . $result[ref_id] . "||"; $thisform[Fields][valore_pratica][content] = "hidden||" . $result_prat[pr_valore] . "||"; $thisform[Fields][tipo_pratica][content] = "hidden||" . $result_prat[pr_comp_cod] . "||"; if ($result[criterio] == "") { $result[criterio] = $result_prat[pr_criterio]; }
} } } } ob_start(); $rs = $DB->Execute("SELECT * FROM {$module} WHERE id=" . $_GET[id]); if (!($result = $rs->FetchRow())) { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT; $iserror = 1; print draw_response($response); } else { $PAGE_ELEMENT[PAGE][1][0][param] = $result[ref_id]; if (check_perm_obj("pratiche", $result[ref_id], "r")) { insert_last_viewed($result[ref_id], "pratiche"); $thisobj = load_fwobject("show", "prestazioni", 1); if ($_SESSION[history] == 0) { $thisobj["Fields"]["button_w"] = make_button("new_spesa_studio.php?id=" . $_GET[id], FW_MODIFY); } else { $thisobj["Fields"]["button_w"] = FW_MODIFY; } $thisobj["Fields"]["button_d"] = make_button_del($str_prima_nota, FW_DELETE); print draw_object($thisobj, intval($_GET[id]), $module); } else { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT; $iserror = 1; print draw_response($response); } } $PAGE[PAGE_CONTENT] = ob_get_contents();
$thisobj["Fields"]["button_sitcont"] = make_button_clean(PRATICHE_SITCONT, 'onClick="loadLayerWindow(\'' . $CONF[url_base] . $CONF[dir_modules] . 'contact/pages/contact_sitcont.php?id=' . $_GET[id] . '\');"'); $thislist = load_fwobject("lists", "pratiche", 0); $thislist["sql_select"] = "SELECT * FROM pratiche p WHERE %[PERM]% AND (pr_ref_idcliente=" . $_GET[id] . " OR pr_ref_idavvr=" . $_GET[id] . " OR pr_ref_idbenefic=" . $_GET[id] . " OR pr_ref_idaltri=" . $_GET[id] . ")"; $thisobj["Fields"]["prat_col"] = ' <tr> <th colspan="2" width="100%" align="center"> <b>' . CONTACT_PRAT_RELATED . '</b></th> </tr> <tr> <td width="100%" colspan="2" onMouseOver="this.className=\'pratica-over-sub\'" onMouseOut="this.className=\'null\'">' . draw_list($thislist, "pratiche") . '</td> </tr>'; } else { $thisobj["Fields"]["prat_col"] = ""; $thisobj["Fields"]["button_sitcont"] = ""; } $rs2 = $DB->Execute(perm_sql_read("SELECT * FROM calendar p WHERE %[PERM]% AND (ref_cont=" . $_GET[id] . ")", "calendar")); if ($rs2->RecordCount() > 0) { $restlist = load_fwobject("lists", "calendar", 6); $restlist["sql_select"] = "SELECT * FROM calendar p WHERE %[PERM]% AND (ref_cont=" . $_GET[id] . ")"; $thisobj["Fields"]["pro_restr"] = ' <tr> <th colspan="2" width="100%" align="center"> <b>' . CONTACT_PROVV_RESTR . '</b></th> </tr> <tr> <td width="100%" colspan="2" onMouseOver="this.className=\'pratica-over-sub\'" onMouseOut="this.className=\'null\'">' . draw_list($restlist, "calendar") . '</td> </tr>'; } else { $thisobj["Fields"]["pro_restr"] = ""; } print draw_object($thisobj, intval($_GET[id]), $module); } else { $response[title] = FW_ERROR_NO_PERM; $response[text] = FW_ERROR_NO_PERM_TXT; $iserror = 1;